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CLAIM AMENDMENT 

In the Claims: 

Please cancel claims 1-34 without prejudice to the underlying subject matter, and the 
Applicants reserve the right to pursue this subject matter in a continuation application. 

Please amend the claims as follows: 
1.-34. Canceled. 

35. (New) A method for authenticating a payment transaction over a network, 
comprising: 

storing a public key associated with a public key infrastructure (PKI) key pair in a profile 
database; 

in response to receiving an authentication request from a buyer over a network, the 
authentication request including a description of the payment transaction and an identity of a 
seller, sending a challenge request to the buyer over the network, the challenge request 
including a message to be digitally signed by the buyer using a private key associated with the 
PKI key pair; 

in response to receiving a challenge response from the buyer over the network, the 
challenge response including the digitally signed message, determining whether the buyer has 
access to the private key by using the public key to decrypt the digitally signed message; 

if so determined, storing a digitally signed record of the payment transaction in a 
transaction archive; and 

sending an authentication response to the seller over the network. 

36. (New) The method of claim 35, further comprising: 
creating the PKI key pair; and 

sending the private key to the buyer over the network. 

37. (New) The method of claim 35, wherein the record of the payment transaction is 
digitally signed using the private key. 
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38. (New) The method of claim 35, wherein the record of the online transaction is 
digitally signed using a local private key. 

39. (New) The method of claim 35, wherein the public key is stored in the form of a 
digital certificate representing that the public key is tied to the buyer. 

40. (New) The method of claim 35, further comprising: 

retrieving a buyer profile from the database, the buyer profile including a plurality of 
payment instruments and a plurality of shipping addresses; 

sending the buyer profile to the buyer over the network; and 

receiving a selection of one of the plurality of payment instruments and one of the 
plurality of shipping addresses from the buyer over the network. 

41. (New) The method of claim 35, further comprising: 
processing the payment transaction via a payment gateway. 

42. (New) A computer readable medium storing instructions adapted to be executed by 
a processor, the instructions including a method for authenticating a payment transaction over 

a network, the method comprising: 

storing a public key associated with a public key infrastructure (PKI) key pair in a profile 
database; 

in response to receiving an authentication request from a buyer over a network, the 
authentication request including a description of the payment transaction and an identity of a 
seller, sending a challenge request to the buyer over the network, the challenge request 
including a message to be digitally signed by the buyer using a private key associated with the 
PKI key pair; 

in response to receiving a challenge response from the buyer over the network, the 
challenge response including the digitally signed message, determining whether the buyer has 
access to the private key by using the public key to decrypt the digitally signed message; 

if so determined, storing a digitally signed record of the payment transaction in a 
transaction archive; and 
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sending an authentication response to the seller over the network. 

43. (New) The computer readable medium of claim 42, wherein the method further 
comprises: 

creating the PKI key pair; and 

sending the private key to the buyer over the network. 

44. (New) The computer readable medium of claim 42, wherein the record of the 
payment transaction is digitally signed using the private key. 

45. (New) The computer readable medium of claim 42, wherein the record of the 
online transaction is digitally signed using a local private key. 

46. (New) The computer readable medium of claim 42, wherein the public key is 
stored in the form of a digital certificate representing that the public key is tied to the buyer. 

47. (New) The computer readable medium of claim 42, wherein the method further 
comprises: 

retrieving a buyer profile from the database, the buyer profile including a plurality of 
payment instruments and a plurality of shipping addresses; 

sending the buyer profile to the buyer over the network; and 

receiving a selection of one of the plurality of payment instruments and one of the 
plurality of shipping addresses from the buyer over the network. 

48. (New) The computer readable medium of claim 42, wherein the method further 
comprises: 

processing the payment transaction via a payment gateway. 

49. (New) A system for authenticating a payment transaction over a network, 
comprising: 

a profile database; 

a transaction archive; and 
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an authentication sen/ice web server coupled to the profile database, the transaction 
archive and the network, the authentication sen/ice web server adaptively configured to: 

store a public key associated with a public key infrastructure (PKI) key pair in a 
profile database; 

in response to receiving an authentication request from a buyer over a network, 
the authentication request including a description of the payment transaction and an 
identity of a seller, send a challenge request to the buyer over the network, the 
challenge request including a message to be digitally signed by the buyer using a private 
key associated with the PKI key pair; 

in response to receiving a challenge response from the buyer over the network, 
the challenge response including the digitally signed message, determine whether the 
buyer has access to the private key by using the public key to decrypt the digitally 
signed message; 

if so determined, store a digitally signed record of the payment transaction in a 
transaction archive; and 

send an authentication response to the seller over the network. 

50. (New) The system of claim 49, wherein the authentication service web server is 
further adapted to: 

create the PKI key pair; and 

send the private key to the buyer over the network. 

51. (New) The system of claim 49, wherein the record of the payment transaction is 
digitally signed using the private key. 

52. (New) The system of claim 49, wherein the record of the online transaction is 
digitally signed using a local private key. 

53. (New) The system of claim 49, wherein the public key is stored in the form of a 
digital certificate representing that the public key is tied to the buyer. 
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54. (New) The system of claim 49, wherein the authentication service web server is 
further adapted to: 

retrieve a buyer profile from the database, the buyer profile including a plurality of 
payment instruments and a plurality of shipping addresses; 

send the buyer profile to the buyer over the network; and 

receive a selection of one of the plurality of payment instruments and one of the 
plurality of shipping addresses from the buyer over the network. 

55. (New) The system of claim 49, wherein the authentication service web server is 
further adapted to: 

process the payment transaction via a payment gateway. 
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